Professional Web Applications Themes

SSH - Direct login without password - Beginner Question - Linux / Unix Administration

Hi, I am a beginner in setting up SSH. Our server "atlantis" is running commercial SSH Tectia Server 4.1.0 with Solaris 8. Our other server "trojan" is running openSSH. We are trying to ssh from trojan to atlantis directly without the root password request. How does one do it ? Attached is our debug log output. Notice it's asking for root password. we want to skip it and ssh into atlantis directly. Thanks, Humphrey trojan% ssh -v atlantis debug1: Host 'atlantis' is known and matches the DSA host key. debug1: Found key in //.ssh/known_hosts:7 debug1: bits set: 512/1024 debug1: len ...

  1. #1

    Default SSH - Direct login without password - Beginner Question

    Hi,

    I am a beginner in setting up SSH. Our server "atlantis" is
    running commercial SSH Tectia Server 4.1.0 with Solaris 8.
    Our other server "trojan" is running openSSH. We are trying to ssh
    from trojan to atlantis directly without the root password request. How
    does one do it ?

    Attached is our debug log output. Notice it's asking for root
    password. we want to skip it and ssh into atlantis directly.

    Thanks,


    Humphrey



    trojan% ssh -v atlantis

    debug1: Host 'atlantis' is known and matches the DSA host key.
    debug1: Found key in //.ssh/known_hosts:7
    debug1: bits set: 512/1024
    debug1: len 55 datafellows 0
    debug1: ssh_dss_verify: signature correct
    debug1: Wait SSH2_MSG_NEWKEYS.
    debug1: GOT SSH2_MSG_NEWKEYS.
    debug1: send SSH2_MSG_NEWKEYS.
    debug1: done: send SSH2_MSG_NEWKEYS.
    debug1: done: KEX2.
    debug1: send SSH2_MSG_SERVICE_REQUEST
    debug1: service_accept: ssh-userauth
    debug1: got SSH2_MSG_SERVICE_ACCEPT
    debug1: authentications that can continue: publickey,password
    debug1: next auth method to try is publickey
    debug1: key does not exist: //.ssh/identity
    debug1: try pubkey: //.ssh/id_rsa
    debug1: read SSH2 private key done: name rsa w/o comment success 1
    debug1: authentications that can continue: publickey,password
    debug1: next auth method to try is publickey
    debug1: try pubkey: //.ssh/id_dsa
    debug1: read SSH2 private key done: name dsa w/o comment success 1
    debug1: sig size 20 20
    debug1: authentications that can continue: publickey,password
    debug1: next auth method to try is publickey
    debug1: next auth method to try is password

    rootatlantis password: #

    underh20 Guest

  2. #2

    Default Re: SSH - Direct login without password - Beginner Question

    On 20 Jun 2005 17:08:48 -0700, underh20 <com> wrote: 

    As root? Don't.
     

    Don't log in as root. Security within the SSH server may stop that from
    happening in any case. There are many ways to do this without hassle,
    and yet preserve security. Easiest that comes to mind, is say user Joe
    on trojan wants to run job "blah" on Atlantis, as root. So, for that,
    set up Joe's SSL keys so he can execute commands on atlantis as himself,
    from trojan. Then, add Joe to the sudoers file on atlantis, so he can
    execute command "blah" on Atlantis as root without a password prompt.
    So, it then is down to this:
    trojan% ssh joeatlantis "sudo blah"
     

    Because you're joe, but you're trying to use root's .ssh files which
    aren't there.

    Dave Guest

  3. #3

    Default Re: SSH - Direct login without password - Beginner Question

    Dave Hinz wrote: 
    >
    >
    > As root? Don't.
    >

    >
    >
    > Don't log in as root. Security within the SSH server may stop that from
    > happening in any case. There are many ways to do this without hassle,
    > and yet preserve security. Easiest that comes to mind, is say user Joe
    > on trojan wants to run job "blah" on Atlantis, as root. So, for that,
    > set up Joe's SSL keys so he can execute commands on atlantis as himself,
    > from trojan. Then, add Joe to the sudoers file on atlantis, so he can
    > execute command "blah" on Atlantis as root without a password prompt.
    > So, it then is down to this:
    > trojan% ssh joeatlantis "sudo blah"
    >

    >
    >
    > Because you're joe, but you're trying to use root's .ssh files which
    > aren't there.[/ref]

    Dave is right about the root login, but if you still wants it:

    For root generate authentication keys for ssh running `ssh-keygen'(1).
    The man page explains everything in detail, but especially you want to
    specify the type of key (rsa1, rsa, dsa) with `-t <type>'




    --
    reply to usenet only
    mgrd Guest

  4. #4

    Default Re: SSH - Direct login without password - Beginner Question

    On Wed, 22 Jun 2005 16:20:07 +0200,
    mgrd <net> wrote:

     

    And posibly the -e option for creating key files for non-OpenSSH
    servers.

    Villy
    Villy Guest

Similar Threads

  1. Replies: 1
    Last Post: September 10th, 07:15 AM
  2. Beginner question
    By Chris in forum ASP
    Replies: 2
    Last Post: March 10th, 03:36 AM
  3. Beginner Question - Help, Please?
    By Dartanian in forum Macromedia ColdFusion
    Replies: 3
    Last Post: July 25th, 01:19 AM
  4. Beginner's Question
    By Raphael_Goubet@adobeforums.com in forum Adobe Indesign Windows
    Replies: 2
    Last Post: September 1st, 07:16 AM
  5. Replies: 1
    Last Post: September 18th, 12:09 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139